首页 项目目录 关于我们
Sign In
javascript
/
Sequelize
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 44d9a51f8a
Branches Tags
Sequelize
/
packages
/
core
/
test
/
unit
/
query-interface
/
select.test.ts

select.test.ts 1.3 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546 
  1. import { DataTypes } from '@sequelize/core';
    2. 

  2. import { expect } from 'chai';
    3. 

  3. import sinon from 'sinon';
    4. 

  4. import { beforeAll2, expectsql, sequelize } from '../../support';
    5. 

  5. 

  6. describe('QueryInterface#select', () => {
    7. 

  7.   const vars = beforeAll2(() => {
    8. 

  8.     const User = sequelize.define(
    9. 

  9.       'User',
    10. 

  10.       {
    11. 

  11.         firstName: DataTypes.STRING,
    12. 

  12.       },
    13. 

  13.       { timestamps: false },
    14. 

  14.     );
    15. 

  15. 

  16.     return { User };
    17. 

  17.   });
    18. 

  18. 

  19.   afterEach(() => {
    20. 

  20.     sinon.restore();
    21. 

  21.   });
    22. 

  22. 

  23.   // you'll find more replacement tests in query-generator tests
    24. 

  24.   it('does not parse user-provided data as replacements', async () => {
    25. 

  25.     const { User } = vars;
    26. 

  26.     const stub = sinon.stub(sequelize, 'queryRaw');
    27. 

  27. 

  28.     await sequelize.queryInterface.select(User, User.table, {
    29. 

  29.       // @ts-expect-error -- we'll fix the typings when we migrate query-generator to TypeScript
    30. 

  30.       attributes: ['id'],
    31. 

  31.       where: {
    32. 

  32.         username: 'some :data',
    33. 

  33.       },
    34. 

  34.       replacements: {
    35. 

  35.         data: "OR ' = ",
    36. 

  36.       },
    37. 

  37.     });
    38. 

  38. 

  39.     expect(stub.callCount).to.eq(1);
    40. 

  40.     const firstCall = stub.getCall(0);
    41. 

  41.     expectsql(firstCall.args[0], {
    42. 

  42.       default: `SELECT [id] FROM [Users] AS [User] WHERE [User].[username] = 'some :data';`,
    43. 

  43.       mssql: `SELECT [id] FROM [Users] AS [User] WHERE [User].[username] = N'some :data';`,
    44. 

  44.     });
    45. 

  45.   });
    46. 

  46. });
    47.